blackmoon | faacec24df4a160f7691b72ebcdbc04f93b82727c4df7639b209209a4c9fc4c6 | Triage

Submit
Reports

Overview

overview

Static

static

3

49cd001bec...0N.exe

windows7-x64

49cd001bec...0N.exe

windows10-2004-x64

Sharing

General

Target

49cd001becb65249837189625b12a720N.exe
Size

72KB
Sample

240726-yc2pbazgnn
MD5

49cd001becb65249837189625b12a720
SHA1

df00de18835653d24fd1808e0ab05ac9b3d6634e
SHA256

faacec24df4a160f7691b72ebcdbc04f93b82727c4df7639b209209a4c9fc4c6
SHA512

a4fdd4e54728dcd77f89c4a2f6ad2d34c7c52e9b0950e59b453599fa69a5ad8d99f0efdb130ecf63285586a1ce279f7e5da0bbdcffd78f05920a7c6fb5829833
SSDEEP

1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIuyldHinxpifW6WLT65w/:ymb3NkkiQ3mdBjFIuyldH+keL+e

Score

10^/10

blackmoon banker discovery trojan upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

49cd001becb65249837189625b12a720N.exe

Resource

win7-20240705-en

blackmoon banker discovery trojan upx

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

49cd001becb65249837189625b12a720N.exe

Resource

win10v2004-20240709-en

blackmoon banker discovery trojan upx

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  49cd001becb65249837189625b12a720N.exe
- Size
  
  72KB
- MD5
  
  49cd001becb65249837189625b12a720
- SHA1
  
  df00de18835653d24fd1808e0ab05ac9b3d6634e
- SHA256
  
  faacec24df4a160f7691b72ebcdbc04f93b82727c4df7639b209209a4c9fc4c6
- SHA512
  
  a4fdd4e54728dcd77f89c4a2f6ad2d34c7c52e9b0950e59b453599fa69a5ad8d99f0efdb130ecf63285586a1ce279f7e5da0bbdcffd78f05920a7c6fb5829833
- SSDEEP
  
  1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIuyldHinxpifW6WLT65w/:ymb3NkkiQ3mdBjFIuyldH+keL+e
Score

10^/10

blackmoon banker discovery trojan upx
- Blackmoon, KrBanker
  Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.
  trojan banker blackmoon
- Detect Blackmoon payload
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

blackmoonbankerdiscoverytrojanupx

behavioral2

blackmoonbankerdiscoverytrojanupx

© 2018-2024

Terms | Privacy